gitlab.find_sec_bugs.OVERLY_PERMISSIVE_FILE_PERMISSION-2

unknown
Download Count*
MIT
License

Overly permissive file permission

Run Locally

Run in CI

Semgrep CI docs

Defintion

Edit RuleView Source
Open in Playground 
rules:
  - id: find_sec_bugs.OVERLY_PERMISSIVE_FILE_PERMISSION-2
    patterns:
      - pattern-inside: |
          $PERMS.add($P);
          ...
          java.nio.file.Files.setPosixFilePermissions(..., $PERMS);
      - metavariable-regex:
          metavariable: $P
          regex: (PosixFilePermission.){0,1}(OTHERS_)
    languages:
      - java
    message: |
      Overly permissive file permission
    metadata:
      cwe: "CWE-732: Incorrect Permission Assignment for Critical Resource"
      category: security
      confidence: HIGH
      primary_identifier: find_sec_bugs.OVERLY_PERMISSIVE_FILE_PERMISSION-2
      secondary_identifiers:
        - name: Find Security Bugs-OVERLY_PERMISSIVE_FILE_PERMISSION
          type: find_sec_bugs_type
          value: OVERLY_PERMISSIVE_FILE_PERMISSION
      license: MIT
    severity: WARNING